Improve Issues type detection in Custom ingestion using a SARIF file.
under review
V
Vivacious Marlin
In STO, the "Issue Type" created by Harness from our SCA sarifs is labeled as "SAST" instead of "SCA". We do not manually set this field; it seems Harness is doing so automatically.
Can we improve the automation detection rules set or add an option to manually select this field?
Log In
V
Vivacious Marlin
Hello,
This is for manual SBOM Ingestion into STO. We use our own custom scanning logic then create a SARIF, which we then upload to STO using the native Harness SBOM ingestion step.
Links and additional info can be found in the Harness support ticket we have open - https://support.harness.io/hc/en-us/requests/94703.
Thanks,
Rick
Pritesh Chandaliya
marked this post as
under review
Can you pls provide more info - link to pipeline and sample report file. Thanks!
Can you pls confirm this is for ingestion mode and not orchestration mode?
Are you using native scanner step or custom step?